Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/873136-09d6-42aa-b41c-4ec1036861e5/1/HJIJzgj02eJeo4i4-Oqpquhqd4c.roa
File: HJIJzgj02eJeo4i4-Oqpquhqd4c.roa (raw, json)
Hash identifier: wrZsixGwOR8Feh+sK78jzAvIAujwYuT/f1ROjNNU0mc=
Subject key identifier: 1C:92:09:CE:08:F4:D9:E2:5E:A3:88:B8:F8:EA:A9:AA:E8:6A:77:87
Certificate issuer: /CN=a230b6ac20967aa7c078f0a4bb7266980522f1c9
Certificate serial: 01856F5DEE0ECB4CE9B57CA602597EE01A63
Authority key identifier: A2:30:B6:AC:20:96:7A:A7:C0:78:F0:A4:BB:72:66:98:05:22:F1:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ojC2rCCWeqfAePCku3JmmAUi8ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/873136-09d6-42aa-b41c-4ec1036861e5/1/HJIJzgj02eJeo4i4-Oqpquhqd4c.roa
Signing time: Sun 01 Jan 2023 22:05:04 +0000
ROA not before: Sun 01 Jan 2023 22:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199962
IP address blocks: 217.28.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:ee:0e:cb:4c:e9:b5:7c:a6:02:59:7e:e0:1a:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a230b6ac20967aa7c078f0a4bb7266980522f1c9
Validity
Not Before: Jan 1 22:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c9209ce08f4d9e25ea388b8f8eaa9aae86a7787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f5:d5:58:36:5c:81:33:09:ef:42:bb:68:44:
de:5b:d7:7d:12:3a:bb:61:66:8f:8f:b6:1f:3e:af:
7c:5e:cc:0a:1a:7e:8b:bd:c7:f0:66:df:2c:3b:01:
9a:53:f7:c7:24:fd:b8:e7:a4:65:dd:c7:b9:27:42:
8f:67:77:6a:ab:e4:aa:74:5d:be:dd:7f:af:55:31:
b2:16:10:3b:22:a8:97:37:c8:b6:ae:fb:dd:8d:f7:
73:d5:85:4d:cf:a7:cc:88:21:9c:e4:9a:6c:d1:95:
a2:25:06:23:fe:58:c8:ed:43:9f:25:de:ef:eb:ba:
cd:83:fc:b7:78:d2:ab:57:a9:d6:79:cc:a1:06:7f:
d0:44:f3:6f:46:41:e5:6e:95:19:46:bd:1a:dc:85:
55:b4:4c:89:41:56:da:04:c4:6f:59:7f:26:1d:ac:
b6:97:42:4b:fb:59:91:00:d8:4b:64:6d:7a:d1:b8:
1b:24:aa:90:20:af:20:ff:73:b4:03:f0:a5:3b:b2:
30:28:38:34:d2:c3:ab:41:57:dc:cd:b0:0a:35:53:
8f:71:8d:64:eb:d2:c6:2a:69:4d:34:31:7f:00:bf:
f4:20:f5:8e:4b:1e:19:3c:9a:85:53:ba:4e:d4:eb:
72:4a:12:c0:11:e7:7d:e1:dd:e0:da:4a:04:ad:dd:
d8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:92:09:CE:08:F4:D9:E2:5E:A3:88:B8:F8:EA:A9:AA:E8:6A:77:87
X509v3 Authority Key Identifier:
keyid:A2:30:B6:AC:20:96:7A:A7:C0:78:F0:A4:BB:72:66:98:05:22:F1:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ojC2rCCWeqfAePCku3JmmAUi8ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/873136-09d6-42aa-b41c-4ec1036861e5/1/HJIJzgj02eJeo4i4-Oqpquhqd4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/873136-09d6-42aa-b41c-4ec1036861e5/1/ojC2rCCWeqfAePCku3JmmAUi8ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.59.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:60:de:9b:4b:43:d2:c8:d9:e1:9b:3e:58:7a:e7:72:7c:97:
e8:4b:5c:fa:e8:f9:29:d3:38:fe:0a:e3:8f:14:5a:9c:5b:10:
af:2f:1a:ab:67:64:49:e9:81:e6:8d:22:4a:63:50:24:d3:9c:
72:93:bd:2e:33:ab:c0:d4:1d:3a:3b:76:68:04:10:e3:f2:ce:
57:24:8d:f0:07:f0:4d:17:e0:42:40:9f:a9:a5:53:6a:e4:69:
03:07:52:a0:80:64:3c:3d:53:27:f2:87:fb:e7:cd:3d:2b:f9:
55:1b:c9:56:ab:10:ad:6a:0d:89:de:d5:6e:14:7d:5a:7e:30:
7f:65:5b:84:95:70:72:13:60:c5:81:fe:e3:8f:6f:41:f4:3e:
5e:7f:33:4a:79:a1:72:a5:31:92:70:39:6b:47:f8:38:71:f2:
42:59:3d:67:c6:a3:45:0c:28:64:73:40:40:19:53:45:11:52:
86:8c:a1:24:72:7a:41:18:92:9b:f1:ba:01:56:61:fb:60:58:
0b:e5:29:30:57:de:4a:10:34:72:3f:e8:2a:0d:a7:2b:52:93:
5f:1e:01:7a:5c:ff:54:bc:82:28:5f:66:b1:4d:bc:dd:00:69:
d0:35:15:2f:a4:c1:77:92:54:d5:f2:d0:cf:c1:60:68:d1:83:
88:29:af:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:09 2024 by rpki-client on console-ams.rpki-client.org